[Soekris] OpenBSD Soekris <-> Soekris PXE boot
ervin
ervin23 at gmail.com
Thu Feb 7 22:37:09 UTC 2008
guidance for OpenBSD Bootstrap here -> http://www.ultradesic.com/?section=74
On 06/02/2008, Brian Candler <B.Candler at pobox.com> wrote:
> On Wed, Feb 06, 2008 at 12:16:45PM +0100, Bill Maas wrote:
> > I've been running dhcpd/tftpd on OpenBSD 3.8-4.2 on a PC without
> > problems, for booting my Soekris boxens. However, when I run [almost]
> > the exact same config on a net4521, and try booting another Soekris box
> > off that one, TFTP times out. On the boot server, 'inetd -d' shows a
> > rapid re-execution of tcpd (or of tftpd without using TCP wrappers) when
> > the client tries to fetch the pxeboot image. The same happens by the way
> > when I try to fetch files manually using 'tftp' from Linux or OpenBSD,
> > but those implementations seem to have a reputation for stupidity and
> > brokenness.
> >
> > The really weird thing is that the same config works on a PC as boot
> > server, but not on a Soekris box. Anyone seen this before?
>
> No, but my suggestion would be to disable your OpenBSD pf temporarily and
> see if the problem goes away.
>
> TFTP is a pretty ugly protocol. An exchange looks like this:
>
> client UDP port XXX ------------> UDP port 69 server
>
> UDP port XXX <------------ UDP port YYY
>
> UDP port XXX ------------> UDP port YYY ...etc
>
> That is, the server choses a dynamic port for sending its replies from. It's
> not easy to firewall properly.
>
> Maybe the difference between your clients is that one happens to have chosen
> XXX=69 as its source port, but the other has chosen XXX=dynamic high port
> (which is the "normal" thing to do). tcpdump could confirm or refute that
> hypothesis.
>
> Regards,
>
> Brian.
> _______________________________________________
> Soekris-tech mailing list
> Soekris-tech at lists.soekris.com
> http://lists.soekris.com/mailman/listinfo/soekris-tech
>
--
mvh/best regards ervin
More information about the Soekris-tech
mailing list